|
|
Below you find white papers and other documentation about AppGate Solutions.
Please contact info@appgate.com for further information.
|
The AppGate product portfolio is aimed to give customers a comprehensive solution that can be tailored for any customer needs.
From small companies in need of remote access to larger organizations which demand total access control, AppGates products protect company resources from threats inside and outside of the organizations perimeter.
The AppGate solution truly delivers holistic security and access control where other approaches fall short.
It is designed to address the security and functionality needs created by two of the most game-changing trends in
todays business world - increased workforce mobility and increased collaboration with worldwide partners and customers.
Below you will find two new documents describing the essence of the AppGate way,
Download AppGate Products White Paper here (pdf)
Download Technology White Paper here (pdf)
|
I BITS (Basnivå for informationssäkerhet), redovisar Krisberedskaps- myndigheten ett antal rekommenderade administrativa säkerhetsåtgarder som minst bör vidtas for att uppnå en acceptabel säkerhetsnivå för informations- hanteringen i en organisation. Denna säkerhetsnivå betecknas basnivå. I första hand riktas dessa rekommendationer mot den informationshantering inom samhällsviktig verksamhet som måste kunna fungera även under olika grader av störningar i samhället. Ambitionen är att basnivån ska vara väl balanserad och ge en generellt acceptabel säkerhetsnivå. Att fastställa huruvida basnivån är tillräcklig for den enskilda organisationen kan dock endast avgoras genom en riskanalys.
Download (pdf only in Swedish)
|
For a system administrator a connecting PC is always a potential threat to the security of the network. It is therefore important to secure the integrity of the PC. The AppGate server asks the PC to run a certain command, which is first downloaded from the AppGate server, to scan the system. Usually this function is used to check antivirus versions or in other ways check that the PC is a corporate PC. Of course the results of these scans can be a part of the access rule set.
Download (pdf)
|
AppGate Trouble Shooter combines a number of Client Checks with Messages
and a diagnostic web page. It runs checks for all the common configuration
issues, which can cause users problems when they connect to their AppGate
Security Server. We use the dynamic portal to display the results. We use
Messages and the web page to help users to fix the configuration issues we
have identified....
Download (pdf)
|
The AppGate system protects company assets
through encryption and fine-grained access
control to applications and services. Its graphical
user interface allows and encourages users to
interact with the security system in order to select
and enable traffic only to the services and applications
they currently need...
Download (pdf)
|
We have found that AppGate can encrypt Skype communications.
This is a guide on how to configure an AppGate environment for such operation. We have a test network loosely modeled
after a customer case. A local network with a proxy and an AppGate Appliance between it and the Internet.
An external client computer with Personal Firewall with such rules that all traffic must pass through the secure link to the AppGate Appliance.
Download (pdf)
|
This is a documentation written for the Department of Electrical Engineering at Linköping University.
Abstract
For Siemens Industrial Turbomachinery to meet its business objectives a modular authentication
concept has to be implemented. Such a mechanism must be cost- effective while providing a wellbalanced
level of security, easy maintenance and be as user-friendly as possible. Authenticating
users securely involves the combination of two fields, theory of authentication mechanisms in
information systems and human computer interaction.
To construct a strong user authentication system the correlations of these fields has to be understood and provide guidance in the design.
The studie
is made by Emil Haraldsson, Civilingenjör i IT, Technology Nexus AB.
Technology Nexus AB
Box 513, Ågatan 40
SE-581 06 Linköping
Office Phone +46 13 35 74 22
Mobile: +46 703 56 67 57
Fax: +46 13 10 02 43
e-mail: emil.haraldsson@nexus.se
Download (pdf)
|
Most organizations know that proper security measures must be taken before laptops and other portable devices can be used to access corporate assets over the Internet.
Such precautions normally include encrypted VPN connections with token-based authentication, anti-virus software and personal firewalls protecting the system against attacks.
Even though much effort is spent on trying to secure these systems, many employees both can and are allowed to use other non corporate-controlled systems to access internal
resources, systems that are beyond the control of corporate system administrators and that can contain virtually any kind of software. The list of such systems can range from home
PCs to public computers found in airports, cafés and Internet kiosks. Spending lots of resources to secure corporate laptops and still allowing users to use any public system is an
approach that is hard to understand. This paper discusses security problems when using public systems for remote access.
Download (pdf)
|
The last couple of weeks, there have been several reports about spyware allowing third parties to snoop both http traffic and traffic sent
through supposedly secure SSL connections. This is especially dangerous when SSL is used to access internal or sensitive corporate resources
using an SSL VPN product.
Download (pdf)
|
The Google Desktop Search Tool can index local files as well as all web, email and chats the user
has participated in: "In addition to basic search, Google Desktop Search introduces new ways to
access relevant and timely information.
Not only are the pages indexed, they are also copied to another location to allow the user view the
contents at a later time. This obviously constitutes a security problem if the user has accessed
sensitive information using Internet Explorer through a VPN connection.
Users accessing sensitive resources using an AppGate system can have the AppGate server to check
for Google Desktop Search Tool on windows systems before granting access to certain services.
If it is detected, all or some services and roles can be excluded for access by this user from this
system. An informative message can also be displayed for the user that "service ZZZ cannot be
accessed from this computer since Google Desktop Search Tool is installed."
Download (pdf)
|
Instant Messaging is growing in popularity all over the world. The ability for instant
communication and the benefit of knowing who is online has added Instant Messaging as a
tool together with ordinary phone and e-mail communication. Project meetings and other conferences
are easy to set up by individual users when needed.
But many companies are still unaware of the security threats this imposes.
Download (pdf)
|
Over the last couple of years the interest in SSL VPNs and Application-level VPNs has grown all over the world.
The technology has many advantages over the traditional IPSec based technology, it is easy to implement with no need for
an installed client and correctly implemented it provides granular access for remote workers and partners.
Few people are aware of the disadvantages from a security perspective, which are real and dangerous.
Download (pdf)
|
Networks are threatened in multiple ways. The issues are many and range from virus
attacks to unauthorized access, originating from both the inside and outside of the
At the same time there is a demand for opening up the network for more open user access.
The AppGate solution manages to balance both sides of this equation.
Download (pdf)
|
"Easy mobile access to corporate resources is important today. It may be crucial to be able to receive and quickly act on important e-mail outside the office. However, it is important that the information can be kept confidential since it often has great strategical value and must be kept secret from prying eyes in order to keep a competitive advantage. Mobility and security are often difficult to combine, and this is one area where the AppGate solution can provide the necessary tools".
Download (pdf)
|
AppGate Network Security Authenticates Both Mobile and Fixed Network VPN Users With One Simple Log-on Procedure From CRYPTOCard.
Download (pdf)
|
"For a VPN system to work however, it must capture the application data by some means and make sure it flows between the client and the server a secure way. Capturing the data flows can be done in different ways with different technical and practical implications".
Download (pdf)
|
For customers with Nortel VPN products this is an alternative that places the AppGate server outside the corporate network.
The AppGate server can protect itself and there is no security threat to place outside the secured zone. This paper instructs you on how to setup
IPsec connectivity between Nortel Connectivity and AppGate 6.0.
Download (pdf)
|
There exist no universal single sign-on standard, but single sign-on, SSO, can still be
introduced using different techniques. Depending on the underlying technology
(client/server, legacy or web based applications), different approaches can be taken to
create a SSO environment. This paper shows how an AppGate system can be used to
implement single sign-on in a user environment.
Download (pdf)
|
The most obvious advantage with AES may be its strong security, but there are other reasons why AES often is the preferred algorithm, for example its speed is important, allowing much information to be processed quickly.
Read about AES and a comparison between the support for AES in SSL-based solutions and The AppGate solution.
Download (pdf)
|
Return on Investment (ROI) is one of the most difficult measures to quantify when trying to justify an investment in IT Security.
This paper looks at several different business processes that might be affected by any investment in a new VPN solution. Hopefully this will enable you to find some new inputs to build a compelling ROI argument for your optimal solution.
Download (pdf)
|
Most VPN solutions will only let a user connect to one VPN server at a time.
This is fine for several applications but there are situations where it can be very useful to have users
connecting to several AppGate Security Servers at the same time.
Read more
|
"This paper is a case study on a project that provided browser based anytime,
anywhere access via the Internet to a hospital application on Citrix Metaframe
using AppGate SSH VPN."
Download (pdf)
|
The upsurge of the Internet has driven a revolution
in the way people work and in the types of
applications deployed by businesses and their
partners. However, solutions to provide secure
access to those applications have not kept pace
with this explosion...
Download (pdf)
|
|